Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.mft
File: 5xHIkR7brjbfGoC76BSyWg-UOfo.mft (raw, json)
Hash identifier: oTjsHUkwwr4pbgHfGNS2gvzPCf6xqtUnHTln8VMV1PQ=
Subject key identifier: 45:CB:08:DD:A3:C3:E8:FD:DC:ED:1C:A9:6E:EA:A1:87:9C:C9:A7:96
Authority key identifier: E7:11:C8:91:1E:DB:AE:36:DF:1A:80:BB:E8:14:B2:5A:0F:94:39:FA
Certificate issuer: /CN=e711c8911edbae36df1a80bbe814b25a0f9439fa
Certificate serial: 01977AC2E59CA65470633C14178460063F64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5xHIkR7brjbfGoC76BSyWg-UOfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.mft
Manifest number: 08B3
Signing time: Mon 16 Jun 2025 22:01:22 +0000
Manifest this update: Mon 16 Jun 2025 22:01:22 +0000
Manifest next update: Tue 17 Jun 2025 22:01:22 +0000
Files and hashes: 1: 5xHIkR7brjbfGoC76BSyWg-UOfo.crl (hash: FIGe4yb5CenXTWjMDOZox7cSoBI9tYcV/tLkO4dN5+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/5xHIkR7brjbfGoC76BSyWg-UOfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 21:51:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7a:c2:e5:9c:a6:54:70:63:3c:14:17:84:60:06:3f:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e711c8911edbae36df1a80bbe814b25a0f9439fa
Validity
Not Before: Jun 16 22:01:22 2025 GMT
Not After : Jun 17 22:01:22 2025 GMT
Subject: CN=45cb08dda3c3e8fddced1ca96eeaa1879cc9a796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6b:ad:d6:b7:44:dd:8c:14:40:8c:a2:79:3b:
5a:48:f4:4d:3c:3f:0f:24:09:55:d0:b4:21:89:c3:
5b:4f:60:57:c8:72:2b:dc:70:db:bc:d1:85:81:c0:
c4:ab:5e:22:08:b9:ab:05:9c:9b:9f:15:19:1f:d2:
84:2f:e9:2b:0b:3b:00:3d:29:64:bd:c0:2b:ac:75:
38:5e:22:d3:85:87:b5:a8:3e:ab:96:4d:1b:ea:0f:
97:eb:7a:ea:1d:fc:06:f7:a7:4f:ce:31:e7:6e:d5:
ab:3e:77:1e:c3:b6:5b:b0:3c:f6:fd:04:f8:ca:25:
4b:55:86:01:94:e4:05:8c:a5:df:e5:da:9f:35:73:
51:e6:9d:df:c3:0e:b1:42:5f:81:3f:d7:26:c0:e8:
92:1e:3c:b9:d7:0a:a4:c0:4f:fb:d3:25:04:6b:1e:
5d:c2:2d:45:cc:2a:c7:90:18:e5:23:4e:20:46:2e:
12:e9:61:52:64:88:46:1d:cc:d0:2e:b5:66:97:b4:
6b:fc:1c:33:2f:19:91:16:c1:b2:fd:ae:b4:41:65:
22:ff:a1:42:d5:37:dc:94:80:67:fd:2a:b1:6b:20:
8e:b6:6c:39:41:6b:31:1e:38:18:0e:ce:f9:7a:c6:
7e:cc:a2:6c:1b:28:57:5c:a4:ce:8a:94:58:59:81:
48:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:CB:08:DD:A3:C3:E8:FD:DC:ED:1C:A9:6E:EA:A1:87:9C:C9:A7:96
X509v3 Authority Key Identifier:
keyid:E7:11:C8:91:1E:DB:AE:36:DF:1A:80:BB:E8:14:B2:5A:0F:94:39:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5xHIkR7brjbfGoC76BSyWg-UOfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:df:cd:90:de:38:53:9e:06:10:04:d1:92:4b:ef:a4:4e:34:
25:93:ba:ed:8c:1d:c7:57:9c:2d:b6:9b:ba:4d:e2:9e:98:b6:
74:b7:18:1b:18:8e:32:45:50:62:ab:ca:f8:e0:d6:cd:84:63:
6e:f6:14:8b:43:91:aa:53:6d:a1:c6:af:fb:69:c8:b7:b1:da:
06:8f:8c:c6:24:4c:73:94:94:cf:67:f1:7c:a4:df:66:f9:b3:
09:10:ed:2c:f7:a2:6b:85:19:b0:8c:42:fa:0f:07:6f:7c:7c:
4b:eb:cd:20:0d:3a:3f:81:d0:b3:38:ce:3b:64:a8:d3:c0:c7:
b9:89:ae:08:96:2a:31:bd:62:37:c0:cc:ff:93:43:86:2a:1c:
ca:fe:98:4f:6a:44:70:f5:74:a3:11:73:f3:d0:41:45:e2:5f:
0d:36:f0:1e:a3:b4:af:44:dd:af:44:9d:65:c1:32:45:31:9e:
3f:b2:6d:19:42:75:84:78:3b:9a:c9:e2:43:27:17:ca:b1:b7:
59:ad:9e:95:2b:a2:fe:4e:10:bb:09:ca:39:c0:4d:51:f4:21:
94:b7:8d:bc:6f:30:0e:06:28:20:0d:ee:27:f9:aa:66:61:0f:
cb:2b:76:b5:3c:18:2e:a9:11:3a:24:a6:f6:0b:a0:46:e4:9a:
eb:48:dd:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 05:53:21 2025 by rpki-client